U-bomb is a ransomware group that emerged in March 2023, operating as a semi-private entity targeting a smaller pool of victims compared to larger ransomware operations. The group is primarily motivated by financial gain and employs double extortion tactics. While it shares some visual similarities with the Hive ransomware group in its negotiation portal, there is no confirmed connection between the two operations. U-bomb is notable for its focus on Linux payloads as of November 2023, distributing them as .sh files that are, in fact, ELF binaries, a technique used to bypass certain security measures.

URLs nuevas detectadas en IntelTracker